CIS Controls
LinkML schema for the CIS Critical Security Controls (CIS Controls) Version 8.1.2 (March 2025). Models the 18 Controls and their Safeguards, including asset types, security functions, and Implementation Groups as defined by the Center for Internet Security. Source document: CIS Controls v8.1.2 (March 2025), licensed CC BY-NC-ND 4.0 (https://creativecommons.org/licenses/by-nc-nd/4.0/).
URI: https://w3id.org/lmodel/cis-controls
Name: cis-controls
Classes
| Class |
Description |
| CISControl |
One of the CIS Critical Security Controls; a high-level defensive action cate... |
| CISControlsDocument |
Root container for a versioned edition of the CIS Critical Security Controls ... |
| Safeguard |
A specific, measurable action that an enterprise should take to implement a C... |
Slots
| Slot |
Description |
| asset_type |
The class of enterprise asset primarily addressed by this Safeguard |
| control_number |
Numeric identifier of the parent CIS Control (1–18) |
| controls |
List of CIS Controls in this document |
| description |
Descriptive text for the element |
| id |
Unique identifier for the element |
| implementation_groups |
The Implementation Group(s) for which this Safeguard is applicable |
| overview |
Brief description of the intent of a Control and its utility as a defensive a... |
| procedures_and_tools |
Technical description of the processes and technologies that enable implement... |
| publication_date |
Publication date of the CIS Controls document (ISO 8601) |
| safeguard_number |
Dotted identifier of this Safeguard (e |
| safeguards |
List of Safeguards belonging to a CIS Control |
| security_function |
NIST CSF 2 |
| title |
Human-readable title of the element |
| version |
Version string of the CIS Controls document (e |
| why_critical |
Explanation of the importance of this Control in blocking, mitigating, or ide... |
Enumerations
| Enumeration |
Description |
| AssetType |
The category of enterprise asset primarily addressed by a Safeguard |
| ImplementationGroup |
Self-assessed tier of CIS Controls applicability based on an enterprise's ris... |
| SecurityFunction |
NIST Cybersecurity Framework 2 |
Types
| Type |
Description |
| Boolean |
A binary (true or false) value |
| ControlId |
Identifier for a CIS Control (e |
| Curie |
a compact URI |
| Date |
a date (year, month and day) in an idealized calendar |
| DateOrDatetime |
Either a date or a datetime |
| Datetime |
The combination of a date and time |
| Decimal |
A real number with arbitrary precision that conforms to the xsd:decimal speci... |
| Double |
A real number that conforms to the xsd:double specification |
| Float |
A real number that conforms to the xsd:float specification |
| Integer |
An integer |
| Jsonpath |
A string encoding a JSON Path |
| Jsonpointer |
A string encoding a JSON Pointer |
| Ncname |
Prefix part of CURIE |
| Nodeidentifier |
A URI, CURIE or BNODE that represents a node in a model |
| Objectidentifier |
A URI or CURIE that represents an object in the model |
| SafeguardId |
Identifier for a CIS Safeguard in the form |
| Sparqlpath |
A string encoding a SPARQL Property Path |
| String |
A character string |
| Time |
A time object represents a (local) time of day, independent of any particular... |
| Uri |
a complete URI |
| Uriorcurie |
a URI or a CURIE |
Subsets
| Subset |
Description |
| EssentialCyberHygiene |
Profile containing Safeguards where implementation_groups includes IG1 |
| Ig2Controls |
Profile containing Safeguards where implementation_groups includes IG2 (a sup... |
| Ig3Controls |
Profile containing Safeguards where implementation_groups includes IG3 (a sup... |